- We'll only use your personal data in the ways we've described here and only when the law allows us to.
- We won't share your personal data with anyone you're not expecting us to.
- We won't send you any marketing emails that you haven't consented to, and you can opt out at any time.
Important information and who we are
References to "personal data" or "personal details" are to any information about an individual from which they can be identified.
26 Queen St
CV32 7NA, UK
What information we collect and how
The information we collect via the website may include:
Any personal details you knowingly provide us with through forms on our website, such as your name, address and telephone number.
Your preferences and use of email subscription, recorded by emails we send you. For example, if you have selected to receive email updates on products and offers.
Your IP Address. This is a numeric address unique to your computer that is recorded by our web server when you request any page or component on the website. This information is used to monitor usage of the website.
What we do with your information
Any personal data we collect from this website will be used in accordance with the Data Protection Act 1988 up to but excluding 25 May 2018 and the General Data Protection Regulation thereafter, in addition to all applicable law about the processing of personal data and privacy. If you have opted to be kept informed of any of our products or services, we will use your email address in order to send you that information. In such a case you will always be offered the option to opt in/out of further communication.
We will only use your personal data when we have a lawful basis for doing so. Typically, we will only use your personal data for the following reasons:
To process your order and to provide after sales service. If your order requires shipping, we may pass your details to a courier service to deliver the products you have purchased.
If you have opted to be kept informed of any of our products or services, we will use your email address in order to send you that information. In such a case you will always be offered the option to opt in or out of further communication. We use MailChimp to process our mailing lists.
Where it's necessary for our legitimate interests or those of a third party, and where your interests and fundamental rights do not override those interests.
Where we need to comply with a legal or regulatory obligation.
We have categorised the data (including personal data) that we use as follows:
- Technical - your IP address, login credentials and the data sent by your browser, such as its type and version and your device's operating system.
- Activity - information about how you use the website
- Contact - email address and telephone number.
- Communication - details of your communication preferences, such as whether or not you have consented to receive marketing information.
- Financial - your payment details.
- Transaction - details about payments to and from you and details of products and services you have purchased from us.
We have categorised the purposes we use the data for as follows:
||Category of data
||Lawful basis for processing, including legitimate interest
|Registration and logging in - when you create or log into an account on our website
||Identity, Technical, Contact, Communication
|Order processing - when you make a purchase from our website
||Identity, Technical, Contact, Communication, Financial, Transaction
||Contractual, Legitimate Interest (e.g. to recover a debt)
|Communication - when we need to inform you about things like changes to your account on our website
||Identity, Contact, Communication
||Contractual, Legal Obligation, Legitimate Interest (e.g. to keep our records up to date and accurate)
|Support - when we provide technical support, or need to let you know about technical issues with the website
||Identity, Technical, Contact, Communication
||Contractual, Legal Obligation, Legitimate Interest (e.g. provision of services and security)
|Marketing - when we suggest products or services that may be of interest to you
||Identity, Contact, Communication
||Legitimate Interest (e.g. to develop our products and services and grow our business)
|Analytics - when we use statistics and analysis to help us improve the website
||Legitimate Interest (e.g. to learn how customers use the website so that we can improve and develop our services, and to inform our marketing strategy)
If we need to use your personal data for another purpose, we will try to ensure that it's compatible with the purposes described here. If it isn't completely compatible then we will notify you by updating this policy, explaining the legal basis for the new purpose.
Sharing personal data
We may need to share your personal data with one or more third parties (our "sub-processors"). We require third parties to respect the security of your personal data and to treat it with accordance to all applicable law. We do not allow third parties to use your personal data for their own purposes. We only permit third parties to process your personal data in accordance with our instructions and for the purposes we specify.
Some of the third parties that we might share your personal data with are outside the European Economic Area. When this is the case, we use written contracts to ensure that personal data has the same or similar protections that it would have in the European Economic Area.
This is a list of the third parties ("sub-processors") that we use:
Amazon Web Services (EU)
Widgit uses Amazon Web Services to host our website and databases.
Widgit uses Cloudflare for content distribution, security and DNS services.
Widgit uses Scalyr for server monitoring.
Sage Pay (EU)
Widgit uses Sage Pay to process secure payments.
Widgit uses SocketLabs to send emails related to our products and services.
Widgit uses MailChimp to send emails related to our products, services and general marketing.
Widgit uses ZenDesk to manage support issues.
Transglobal Express (UK)
Widgit uses Transglobal Express to arrange shipping.
Our International Partners
Widgit products and services are sold outside the UK by our trusted international partners. If you have purchased our products or services from one of our international partners then they will be able to help with sales and support issues.
We have security measures in place to prevent your personal data from being accidentally lost, disclosed, used or accessed in an unauthorised way. We also limit access to your data to the employees and third parties that need access to it.
All Widgit staff with access to your data are subject to a duty of confidence and have been trained in privacy awareness and the handling of personal data.
Data Retention (How long we keep your personal data for)
If you have created an account on the website but have not made any purchases and have not logged in for 12 months, your account will be deleted.
For tax reasons, we are legally required to keep basic information about our customers (including Contact, Identity, Financial and Transaction data as described) for 6 years after they cease being customers.
In some circumstances you can ask us to delete your personal data (for more information, see 'Your other rights').
Your right to object
You have the right to object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and you feel that it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
Your other rights
You have certain rights under data protection laws in relation to your personal data. If you wish to exercise any of the rights described here, please contact us using the details in "Important information and who we are".
Request access to your personal data
You can ask for a copy of the personal data we hold about you to check that we are lawfully processing it.
Request correction of the personal data that we hold about you
You can ask us to correct any incomplete or inaccurate data we hold about you, although we may need to verify the accuracy of the new data you provide to us.
Request erasure of your personal data
You can ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see "Your right to object"), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with applicable law. Note that we may not always be able to comply with your request of erasure for specific legal reasons which you will be informed of, if applicable, at the time of your request.
Request restriction of processing of your personal data
You can ask us to suspend the processing of your personal data:
- if you want us to establish the data's accuracy
- where our use of the data is unlawful but you do not want us to erase it
- where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims
- when you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
Request the transfer of your personal data to you or to a third party
You can ask us to provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to information that you initially provided consent for us to use or where we used the information to perform a contract with you.
Withdraw consent at any time
If we are relying on consent to process your personal data then you can withdraw that consent at any time. This does not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
What are "cookies"?
Cookies are very small text files that are stored in your browser by the websites you visit.
Cookies can be used to identify you to a website, to help it remember your preferences or to track your usage of the website so that the people who run it can give you a better service.
If you would like to know how to control or delete cookies, or just to learn more about them, you can visit http://www.aboutcookies.org
The Widgit website uses a number of cookies which are described below.
widgit.com - PHPSESSID, language, currency and customer
widgit.com - _ga, _gid and _gat
You can opt out of all Google Analytics tracking by installing Google's Opt-out Browser Add-on.
widgit.com - point_enabled
Widgit uses 'Point' to support the text on our web pages. If you turn 'Point' on or off then it will use a cookie to remember your choice.
widgit.com - _cfduid
Cloudflare provides security and performance tools used by widgit.com.
addsearch.com - suid
AddSearch provides the search used on widgit.com and uses a cookie to help remember your previous searches and search preferences.
facebook.com - fr
The Widgit website uses Facebook Pixel to collect anonymised statistics that help us decide how to advertise on social media.
widgit.com - 'Flash' cookies
The Flash video player on our website uses a cookie to save your volume preferences.